Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
IBM WebSEAL URL Redirection to Untrusted Site (Open Redirect) Vulnerability - CVE-2017-1489 - Vulnerability Database
IBM WebSEAL

IBM WebSEAL URL Redirection to Untrusted Site (Open Redirect) Vulnerability - CVE-2017-1489

Medium
Reference: CVE-2017-1489
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2017-1489
Title: IBM WebSEAL URL Redirection to Untrusted Site (Open Redirect) Vulnerability
Overview:

IBM Security Access Manager 6.1 7.0 8.0 and 9.0 e-community configurations may be affected by a redirect vulnerability. ECSSO Master Authentication can redirect to a server not participating in an e-community domain. IBM X-Force ID: 128687.